hbdxmz / AutoBypassEncryptAndSignLinks
auto decrypt the request ciphertext and auto bypass the signature of the API. 针对数据包加密、签名保护的安全测试场景,借助burp插件自动解密数据包密文,自动绕过接口的签名保护,最后借助密文数据天然过waf的优势结合Xray等漏扫工具完成半自动的安全测试
☆52Updated last year
Alternatives and similar repositories for AutoBypassEncryptAndSign
Users that are interested in AutoBypassEncryptAndSign are comparing it to the libraries listed below
Sorting:
- ☆25Updated 3 years ago
- BurpHttpHelper是一款Burpsuite插件,主要用于简化和解决Burpsuite对Http的一些操作.☆104Updated 2 years ago
- 一款BurpSuite插件,辅助手工测试☆72Updated 2 years ago
- ☆90Updated 2 years ago
- nuclei模版生成插件☆109Updated last year
- 一款支持检测host头攻击的burp suite插件☆54Updated last year
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆32Updated last year
- 一款扫描js中敏感api的burp插件☆39Updated 2 years ago
- Extract React router info from React based website within browser☆41Updated last year
- 经过优化的渗透测试Payload字典、Fuzz Payload字典。Penetration testing Payload dictionary, Fuzzy Payload dictionary☆39Updated last year
- iis高版本短文件名猜解脚本,适用于iis7.5~10.x版本的iis中间件。☆65Updated 7 months ago
- 一个js文件敏感信息搜集脚本,支持输入url和js文件,也支持批量敏感信息匹配。☆77Updated 2 years ago
- god_param☆42Updated last year
- burpsuite插件-被动无感识别指纹-主动poc扫描☆27Updated last year
- 使用 Java 实现的将 Burp 流量异步转发到 Xray 的 Burp 插件,内含多种功能☆17Updated 2 years ago
- 一款被动扫描ssrf的burpsuite插件☆21Updated 2 years ago
- 手动收集各大SRC平台主域名,通过程序自动处理以格式化存入数据库中,便于配合其它信息搜集工具进一步测试。☆49Updated 11 months ago
- HiddenDomainHunter☆20Updated 2 years ago
- API字典,API爆破字典☆24Updated 2 years ago
- 云函数扫描器☆59Updated last year
- ☆33Updated 3 years ago
- JSHunter-一款针对于前端的未授权访问扫描工具☆78Updated 6 months ago
- Abandoned - fastjson 1.2.24-1.2.80 poc & vulns env & how to check vul☆95Updated 2 years ago
- 子域名爆破,增加了智能爬虫功能☆70Updated last year
- js / html /josn 中获取 泄露的接口 / URL / 未授权路径 获取之后尝试访问☆70Updated 3 years ago
- ARL 灯塔的 WIH 利用☆31Updated last year
- 字典生成工具☆89Updated 2 years ago
- ☆19Updated last year
- ☆40Updated 11 months ago
- 微信小程序批量反编译☆59Updated 4 years ago